/*
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
 *
 * Copyright (c) 2007 Sun Microsystems Inc. All Rights Reserved
 *
 * The contents of this file are subject to the terms
 * of the Common Development and Distribution License
 * (the License). You may not use this file except in
 * compliance with the License.
 *
 * You can obtain a copy of the License at
 * https://opensso.dev.java.net/public/CDDLv1.0.html or
 * opensso/legal/CDDLv1.0.txt
 * See the License for the specific language governing
 * permission and limitations under the License.
 *
 * When distributing Covered Code, include this CDDL
 * Header Notice in each file and include the License file
 * at opensso/legal/CDDLv1.0.txt.
 * If applicable, add the following below the CDDL Header,
 * with the fields enclosed by brackets [] replaced by
 * your own identifying information:
 * "Portions Copyrighted [year] [name of copyright owner]"
 *
 * Portions Copyrighted 2016 ForgeRock AS.
 */

package com.sun.identity.cli.realm;

import com.iplanet.sso.SSOException;
import com.iplanet.sso.SSOToken;
import com.sun.identity.cli.AttributeValues;
import com.sun.identity.cli.AuthenticatedCommand;
import com.sun.identity.cli.CLIException;
import com.sun.identity.cli.ExitCodes;
import com.sun.identity.cli.FormatUtils;
import com.sun.identity.cli.IArgument;
import com.sun.identity.cli.IOutput;
import com.sun.identity.cli.LogWriter;
import com.sun.identity.cli.RequestContext;
import com.sun.identity.idm.AMIdentity;
import com.sun.identity.idm.AMIdentityRepository;
import com.sun.identity.idm.IdRepoException;
import com.sun.identity.security.AdminTokenAction;
import com.sun.identity.sm.AttributeSchema;
import com.sun.identity.sm.OrganizationConfigManager;
import com.sun.identity.sm.SMSException;
import com.sun.identity.sm.ServiceSchema;
import com.sun.identity.sm.ServiceSchemaManager;
import java.security.AccessController;
import java.text.MessageFormat;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import java.util.Set;
import java.util.logging.Level;

/**
 * Adds service attribute values of a realm.
 */
public class RealmAddServiceAttributes extends AuthenticatedCommand {
    /**
     * Services a Commandline Request.
     *
     * @param rc Request Context.
     * @throws CLIException if the request cannot serviced.
     */
    @Override
    public void handleRequest(RequestContext rc) 
        throws CLIException {
        super.handleRequest(rc);
        ldapLogin();
        SSOToken adminSSOToken = getAdminSSOToken();
        IOutput outputWriter = getOutputWriter();

        String realm = getStringOptionValue(IArgument.REALM_NAME);
        String serviceName = getStringOptionValue(IArgument.SERVICE_NAME);
        String datafile = getStringOptionValue(IArgument.DATA_FILE);
        List attrValues = rc.getOption(IArgument.ATTRIBUTE_VALUES);

        if ((datafile == null) && (attrValues == null)) {
            throw new CLIException(
                getResourceString("missing-attributevalues"),
                ExitCodes.INCORRECT_OPTION, rc.getSubCommand().getName());
        }

        Map<String, Set<String>> attributeValues = AttributeValues.parse(getCommandManager(), datafile, attrValues);
        attributeValues = processFileAttributes(attributeValues);
        try {
            String[] params = {realm, serviceName};

            OrganizationConfigManager ocm = new OrganizationConfigManager(
                adminSSOToken, realm);
            Map<String, Boolean> mapAttrType = getMultipleValueAttrs(
                serviceName);
            Set assignedServices = ocm.getAssignedServices(true);

            AMIdentityRepository repo = new AMIdentityRepository(
                adminSSOToken, realm);
            AMIdentity ai = repo.getRealmIdentity();
            Set servicesFromIdRepo = ai.getAssignedServices();
            boolean modified = false;
            
            if (assignedServices.contains(serviceName)) {
                writeLog(LogWriter.LOG_ACCESS, Level.INFO,
                    "ATTEMPT_REALM_ADD_SERVICE_ATTR_VALUES", params);
                
                Map origValues = ocm.getServiceAttributes(serviceName);
                if (AttributeValues.mergeAttributeValues(
                    origValues, attributeValues, mapAttrType, true)
                ) {
                    ocm.modifyService(serviceName, origValues);
                }
                writeLog(LogWriter.LOG_ACCESS, Level.INFO,
                    "SUCCEED_REALM_ADD_SERVICE_ATTR_VALUES", params);
                modified = true;
            }
            
            if (servicesFromIdRepo.contains(serviceName)) {
                writeLog(LogWriter.LOG_ACCESS, Level.INFO,
                    "ATTEMPT_REALM_ADD_SERVICE_ATTR_VALUES", params);
                Map origValues = ai.getServiceAttributes(serviceName);
                if (AttributeValues.mergeAttributeValues(
                    origValues, attributeValues, mapAttrType, true)
                 ) {
                    ai.modifyService(serviceName, origValues);
                }
                writeLog(LogWriter.LOG_ACCESS, Level.INFO,
                    "SUCCEED_REALM_ADD_SERVICE_ATTR_VALUES", params);
                modified = true;
            }
            
            if (modified) {
                outputWriter.printlnMessage(
                    getResourceString("realm-add-service-attributes-succeed"
                    ));
                outputWriter.printlnMessage("");
                outputWriter.printlnMessage(
                    FormatUtils.printAttributeValues("{0}={1}", attributeValues)
                    );
            } else {
                outputWriter.printlnMessage(MessageFormat.format(
                    getResourceString
                        ("realm-add-service-attributes-not-assigned"),
                    (Object[])params));
            }
        } catch (IdRepoException e) {
            String[] args = {realm, e.getMessage()};
            debugError("RealmAddServiceAttributes.handleRequest", e);
            writeLog(LogWriter.LOG_ERROR, Level.INFO,
                "FAILED_REALM_ADD_SERVICE_ATTR_VALUES", args);
            throw new CLIException(e,ExitCodes.REQUEST_CANNOT_BE_PROCESSED);
        } catch (SSOException e) {
            String[] args = {realm, e.getMessage()};
            debugError("RealmAddServiceAttributes.handleRequest", e);
            writeLog(LogWriter.LOG_ERROR, Level.INFO,
                "FAILED_REALM_ADD_SERVICE_ATTR_VALUES", args);
            throw new CLIException(e,ExitCodes.REQUEST_CANNOT_BE_PROCESSED);
        } catch (SMSException e) {
            String[] args = {realm, e.getMessage()};
            debugError("RealmAddServiceAttributes.handleRequest", e);
            writeLog(LogWriter.LOG_ERROR, Level.INFO,
                "FAILED_REALM_ADD_SERVICE_ATTR_VALUES", args);
            throw new CLIException(e,ExitCodes.REQUEST_CANNOT_BE_PROCESSED);
        }
    }

    private Map<String, Boolean> getMultipleValueAttrs(String serviceName)
        throws SMSException, SSOException {
        Map<String, Boolean> result = new HashMap<String, Boolean>();
        SSOToken superAdminToken = (SSOToken) AccessController.doPrivileged(
            AdminTokenAction.getInstance());
        ServiceSchemaManager ssm = new ServiceSchemaManager(serviceName,
            superAdminToken);
        ServiceSchema schema = ssm.getOrganizationSchema();
        if (schema != null) {
            getMultipleValueAttrs(schema, result);
        }
        schema = ssm.getDynamicSchema();
        if (schema != null) {
            getMultipleValueAttrs(schema, result);
        }
        return result;
    }

    private void getMultipleValueAttrs(
        ServiceSchema schema,
        Map<String, Boolean> result) {
        Set<String> attrNames = schema.getServiceAttributeNames();
        for (String n : attrNames) {
            AttributeSchema as = schema.getAttributeSchema(n);
            AttributeSchema.Type type = as.getType();
            if (type.equals(AttributeSchema.Type.LIST) ||
                type.equals(AttributeSchema.Type.MULTIPLE_CHOICE)) {
                result.put(n, true);
            } else {
                result.put(n, false);
            }
        }
    }
}
